Search for packages
Package details: pkg:alpm/archlinux/lib32-glibc@2.26-8
purl pkg:alpm/archlinux/lib32-glibc@2.26-8
Next non-vulnerable version 2.26-9
Latest non-vulnerable version 2.37-2
Risk 4.4
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-jauw-zxrf-aaae
Aliases:
CVE-2017-15671
The glob function in glob.c in the GNU C Library (aka glibc or libc6) before 2.27, when invoked with GLOB_TILDE, could skip freeing allocated memory when processing the ~ operator with a long user name, potentially leading to a denial of service (memory leak).
2.26-9
Affected by 0 other vulnerabilities.
VCID-sbu9-jza7-aaae
Aliases:
CVE-2017-15670
The GNU C Library (aka glibc or libc6) before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories using the ~ operator followed by a long string.
2.26-9
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T07:46:09.630744+00:00 Arch Linux Importer Affected by VCID-sbu9-jza7-aaae https://security.archlinux.org/AVG-460 36.0.0
2025-03-28T07:46:09.607471+00:00 Arch Linux Importer Affected by VCID-jauw-zxrf-aaae https://security.archlinux.org/AVG-460 36.0.0
2024-09-28T20:47:41.510641+00:00 Arch Linux Importer Affected by VCID-sbu9-jza7-aaae https://security.archlinux.org/AVG-460 34.0.1
2024-09-28T20:47:41.485367+00:00 Arch Linux Importer Affected by VCID-jauw-zxrf-aaae https://security.archlinux.org/AVG-460 34.0.1
2024-01-31T12:09:58.115173+00:00 Arch Linux Importer Affected by VCID-sbu9-jza7-aaae https://security.archlinux.org/AVG-460 34.0.0rc2
2024-01-31T12:09:58.088642+00:00 Arch Linux Importer Affected by VCID-jauw-zxrf-aaae https://security.archlinux.org/AVG-460 34.0.0rc2
2024-01-03T22:27:29.783792+00:00 Arch Linux Importer Affected by VCID-sbu9-jza7-aaae https://security.archlinux.org/AVG-460 34.0.0rc1
2024-01-03T22:27:29.755185+00:00 Arch Linux Importer Affected by VCID-jauw-zxrf-aaae https://security.archlinux.org/AVG-460 34.0.0rc1